Who are the 5 people a week downloading this? https://www.npmjs.com/package/babel-plugin-glowup-vibes

Who are the 5 people a week downloading this? https://www.npmjs.com/package/babel-plugin-glowup-vibes
List of NPM Commands ! Zoom: https://nubecolectiva.com/comunidad/flyers/list-commands-npm/
Lista de Comandos NPM ! Zoom: https://nubecolectiva.com/comunidad/flyers/lista-comandos-npm/
#programming #coding #programación #webdevelopment #devs #softwaredevelopment #npm #nodejs
Install 'steploop', with npm:
https://www.npmjs.com/package/steploop
Today, I released 'steploop', a TypeScript/JavaScript package that provides a fully-featured main-loop which acts as a strong foundation for building loops that execute at a consistent, specified rate. It is inspired by game engine main-loops like Godot's MainLoop or Unity's Update() loop.
Source code: https://github.com/nickesc/steploop
To see ‘steploop’ in action, visit the demo page.
Demo page: https://nickesc.github.io/steploop/
30 Years of JavaScript: 10 Milestones That Changed the Web, by @ricmac (@TheNewStack):
https://thenewstack.io/30-years-of-javascript-10-milestones-that-changed-the-web/
#javascript #anniversaries #history #ecmascript #ajax #jquery #web2.0 #nodejs #npm #react #typescript #webassembly
npm run you fools
Are npm packages and dependencies an unmitigated disaster, or is it just me?
Nginx Proxy Manager 2.12.4 lands with API schema fixes, performance improvements, and a batch of new DNS providers for Certbot plugin support.
https://linuxiac.com/nginx-proxy-manager-2-12-4-released-with-certbot-enhancements/
GoWM : Le Wasm Manager qui va Révolutionner tes Projets JavaScript
https://www.devbyben.fr/blog/gowm-le-wasm-manager-qui-va-revolutionner-tes-projets-javascript #javascript #webassembly #npm #opensource
Are you reviewing your NPM dependancies for malicious code? #devsecops #appsec #npm
https://www.scworld.com/news/complex-npm-attack-uses-7-plus-layers-of-obfuscation-to-spread-pulsar-rat
Malicious #npm packages posing as utilities delete project directories
Hidden backdoors found in npm packages allow attackers to remotely wipe entire systems, raising serious supply chain security concerns.
Read: https://hackread.com/backdoors-npm-packages-attackers-wipe-systems/
#NPM: New Supply Chain #Malware Hits NPM and #PyPI Package Ecosystems. #ReactNative-Aria & #GlueStack packages with cumulative 1mln+ weekly downloads backdoored overnight - check your dependencies!
#SoftwareSupplyChainSecurity
https://thehackernews.com/2025/06/new-supply-chain-malware-operation-hits.html
New release of the Total-Serialism library for JavaScript with many bug fixes and updates is on github/npm!
https://github.com/tmhglnd/total-serialism/releases/tag/v2.10.2
https://www.npmjs.com/package/total-serialism
total-serialism is a set of functions used for procedurally generating and transforming number sequences (mainly in the form of arrays). This library does not output anything else then numbers, but can therefore be integrated with frameworks like P5js, ToneJS, Node4Max, Hydra and any other javascript based project you want to generate arrays for.
New: Backdoors found in Python & NPM packages targeting Windows & Linux! Attackers use fake ‘colorama’ & ‘colorizr’ to steal data + gain remote access.
Read more: https://hackread.com/backdoors-python-npm-packages-windows-linux/
Package lurking in npm for six years waits to destroy your work https://www.developer-tech.com/news/package-lurking-npm-six-years-waits-destroy-your-work/ #npm #developers #opensource #coding #programming #javascript #cybersecurity #malware #hacking #infosec #security #tech #news #technology
#NPM: Dozens of packages have been discovered in the NPM index that attempt to collect sensitive host and network data and send it to a Discord webhook controlled by the threat actor:
https://www.bleepingcomputer.com/news/security/dozens-of-malicious-packages-on-npm-collect-host-and-network-data/